IDEAS home Printed from https://ideas.repec.org/a/eee/ecolet/v251y2025ics0165176525001442.html

On equilibrium cyber risk

Author

Listed:
  • Ramírez, Carlos A.

Abstract

I develop a simple model to study how the interplay between institutions’ and hackers’ incentives can alter cyber risk within an equilibrium context. By formalizing the strategic interaction between institutions and hackers, the model characterizes how changes in heterogeneity across institutions, cybersecurity technologies, and hacker competition can lead to material shifts in cyber risk.

Suggested Citation

  • Ramírez, Carlos A., 2025. "On equilibrium cyber risk," Economics Letters, Elsevier, vol. 251(C).
  • Handle: RePEc:eee:ecolet:v:251:y:2025:i:c:s0165176525001442
    DOI: 10.1016/j.econlet.2025.112307
    as

    Download full text from publisher

    File URL: http://www.sciencedirect.com/science/article/pii/S0165176525001442
    Download Restriction: Full text for ScienceDirect subscribers only

    File URL: https://libkey.io/10.1016/j.econlet.2025.112307?utm_source=ideas
    LibKey link: if access is restricted and if your library uses this service, LibKey will redirect you to where you can use your library subscription to access this item
    ---><---

    As the access to this document is restricted, you may want to

    for a different version of it.

    References listed on IDEAS

    as
    1. Anil K. Kashyap & Anne Wetherilt, 2019. "Some Principles for Regulating Cyber Risk," AEA Papers and Proceedings, American Economic Association, vol. 109, pages 482-487, May.
    2. Chang, Jin-Wook & Jayachandran, Kartik & Ramírez, Carlos A. & Tintera, Ali, 2024. "On the anatomy of cyberattacks," Economics Letters, Elsevier, vol. 238(C).
    3. Hao Jiang & Naveen Khanna & Qian Yang & Jiayu Zhou, 2024. "The Cyber Risk Premium," Management Science, INFORMS, vol. 70(12), pages 8791-8817, December.
    4. Aldasoro, Iñaki & Gambacorta, Leonardo & Giudici, Paolo & Leach, Thomas, 2022. "The drivers of cyber risk," Journal of Financial Stability, Elsevier, vol. 60(C).
    5. Antonis Kotidis & Stacey L. Schreft, 2022. "Cyberattacks and Financial Stability: Evidence from a Natural Experiment," Finance and Economics Discussion Series 2022-025, Board of Governors of the Federal Reserve System (U.S.).
    6. Kamiya, Shinichi & Kang, Jun-Koo & Kim, Jungmin & Milidonis, Andreas & Stulz, René M., 2021. "Risk management, firm reputation, and the impact of successful cyberattacks on target firms," Journal of Financial Economics, Elsevier, vol. 139(3), pages 719-749.
    7. Crosignani, Matteo & Macchiavelli, Marco & Silva, André F., 2023. "Pirates without borders: The propagation of cyberattacks through firms’ supply chains," Journal of Financial Economics, Elsevier, vol. 147(2), pages 432-448.
    8. Rey, Hélène & Jamilov, Rustam & Tahoun, Ahmed, 2021. "The Anatomy of Cyber Risk," CEPR Discussion Papers 16217, Centre for Economic Policy Research.
    9. Eisenbach, Thomas M. & Kovner, Anna & Lee, Michael Junho, 2022. "Cyber risk and the U.S. financial system: A pre-mortem analysis," Journal of Financial Economics, Elsevier, vol. 145(3), pages 802-826.
    Full references (including those not matched with items on IDEAS)

    Most related items

    These are the items that most often cite the same works as this one and are cited by the same works as this one.
    1. Crosignani, Matteo & Macchiavelli, Marco & Silva, André F., 2023. "Pirates without borders: The propagation of cyberattacks through firms’ supply chains," Journal of Financial Economics, Elsevier, vol. 147(2), pages 432-448.
    2. Chang, Jin-Wook & Jayachandran, Kartik & Ramírez, Carlos A. & Tintera, Ali, 2024. "On the anatomy of cyberattacks," Economics Letters, Elsevier, vol. 238(C).
    3. Aldasoro, Iñaki & Gambacorta, Leonardo & Giudici, Paolo & Leach, Thomas, 2022. "The drivers of cyber risk," Journal of Financial Stability, Elsevier, vol. 60(C).
    4. Anand, Kartik & Duley, Chanelle & Gai, Prasanna, 2022. "Cybersecurity and financial stability," Discussion Papers 08/2022, Deutsche Bundesbank.
    5. Strauss, Tal, 2026. "Cyber Risk, Regulation, and Firm Resilience," Other publications TiSEM efb58ae1-e7b6-41dc-b403-2, Tilburg University, School of Economics and Management.
    6. Tan, Weijie & Guo, Binhua & Zhang, Qiantao, 2025. "Cybersecurity governance and corporate market value: Perspectives from investor trust and supply chain trust," Pacific-Basin Finance Journal, Elsevier, vol. 90(C).
    7. Matteo Malavasi & Gareth W. Peters & Stefan Treuck & Pavel V. Shevchenko & Jiwook Jang & Georgy Sofronov, 2024. "Cyber Risk Taxonomies: Statistical Analysis of Cybersecurity Risk Classifications," Papers 2410.05297, arXiv.org.
    8. Douglas Cumming & My Nguyen & Anh Viet Pham & Ama Samarasinghe, 2025. "Banking system stability: A global analysis of cybercrime laws," Papers 2512.01237, arXiv.org.
    9. Boot, Arnoud & Hoffmann, Peter & Laeven, Luc & Ratnovski, Lev, 2021. "Fintech: what’s old, what’s new?," Journal of Financial Stability, Elsevier, vol. 53(C).
    10. Chelsea Liu & Muhammad Ali Babar, 2026. "Corporate cybersecurity risk and data breaches: A systematic review of empirical research," Australian Journal of Management, Australian School of Business, vol. 51(1), pages 62-92, February.
    11. Martin Boyer & Martin Eling, 2023. "New advances on cyber risk and cyber insurance," The Geneva Papers on Risk and Insurance - Issues and Practice, Palgrave Macmillan;The Geneva Association, vol. 48(2), pages 267-274, April.
    12. Nordine Abidi & Leonardo Gambacorta & Christoffer Kok & Leonardo Madio & Ixart Miquel-Flores & Alberto Partida, 2026. "Disciplining digital risk: evidence from cyber stress tests," BIS Working Papers 1351, Bank for International Settlements.
    13. Francesco Columba & Manuel Cugliari & Marco Orlandi & Federica Vassalli, 2026. "The Cyber Risk Of Non-Financial Firms," Mercati, infrastrutture, sistemi di pagamento (Markets, Infrastructures, Payment Systems) 75, Bank of Italy, Directorate General for Markets and Payment System.
    14. Zong, Lu & Tao, Zheng & Zhai, Jia & Shi, Shimeng, 2025. "Measuring the impact of cyber policy: A news-based cyber policy index and its spillover to U.S. stock sectors," Research in International Business and Finance, Elsevier, vol. 78(C).
    15. Xu, Gengxi & Li, Yugang & Liu, Shanshan & Ye, Zhuhong, 2026. "Cybersecurity risk and firm growth: Empirical evidence based on text analysis," The North American Journal of Economics and Finance, Elsevier, vol. 81(C).
    16. António Miguel Martins & Nuno Moutinho & Susana Cró, 2025. "Stock market effects of major cyber-attacks: evidence for breached and cybersecurity listed firms," Journal of Banking Regulation, Palgrave Macmillan, vol. 26(4), pages 868-877, December.
    17. Sulong, Zunaidah & Fuszder, Md. Habibur Rahman & Abdullah, Mohammad & Abakah, Emmanuel Joel Aikins, 2025. "Cybersecurity risk and bank risk-taking," Journal of Behavioral and Experimental Finance, Elsevier, vol. 47(C).
    18. José Ramón Martínez Resano, 2022. "Digital resilience and financial stability. The quest for policy tools in the financial sector," Financial Stability Review, Banco de España, issue Autumn.
    19. Daniel Celeny & Loic Mar'echal, 2024. "Cyber risk and the cross-section of stock returns," Papers 2402.04775, arXiv.org, revised Mar 2024.
    20. Lin, Weizheng & Wang, Chih-Wei & Li, Ying-Jie & Chen, Jian-Yun, 2025. "From green to digital: Exploring the role of ecological footprints on cybersecurity risk," Energy Economics, Elsevier, vol. 146(C).

    More about this item

    Keywords

    ;
    ;
    ;
    ;

    JEL classification:

    • D39 - Microeconomics - - Distribution - - - Other
    • D22 - Microeconomics - - Production and Organizations - - - Firm Behavior: Empirical Analysis
    • M15 - Business Administration and Business Economics; Marketing; Accounting; Personnel Economics - - Business Administration - - - IT Management

    Statistics

    Access and download statistics

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:eee:ecolet:v:251:y:2025:i:c:s0165176525001442. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    If CitEc recognized a bibliographic reference but did not link an item in RePEc to it, you can help with this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: Catherine Liu (email available below). General contact details of provider: http://www.elsevier.com/locate/ecolet .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.